LokiLocker is a .Net ransomware, which was seen first in August 2021. This malware is protected with NETGuard (modified ConfuserEX) using the additional KoiVM virtualization plugin.
The victims were observed ti be scattered around the world, with main concentation in Estern Europe and Asia (BlackBerry).
|2022-03-23 ⋅ MSSPAlert ⋅ |
LokiLocker Ransomware May Use False Flag to Avoid Identification
|2022-03-16 ⋅ Blackberry ⋅ |
New Ransomware Family Identified: LokiLocker RaaS Targets Windows Systems
|2022-03-16 ⋅ The Register ⋅ |
BlackBerry says extortionists erase documents if ransom unpaid
There is no Yara-Signature yet.